Cyber Defense Incident Responder – Cyber Security

The Cyber Security organization in IT Relation are expanding and seeking our next team-mate who wants to participate in our endeavor towards securing and raising our customers Cyber Threat defenses and actively responding to alerts and incidents.

Are you ready to join forces and fight the bad guys, as one of our new Cyber Defense Incident Responders?

You will be part of a team with Cyber Security focused specialists, responsible for development, implementation, maintenance, and operation of our specialized SOAR.

We perform SIEM/IDS (amongst others) monitoring, visitation and triaging, incident response, Cyber Threat Intelligence, Vulnerability Scanning and Management, as well as performing advisories on threats, security posture analysis and more, internally and for customers.

About the job

As one of our new Cyber Defense Incident Responders you will be responsible for:

• Daily visitation and investigation of the incoming Security Incident Alert escalations
• Using our SOAR, you will apply existing playbooks in analyzing the escalated Security Incidents, ensuring the correct prioritization and that the relevant response is performed.
• Collaborating with our third line/tier 3 investigators and helping in the response
• You will be participating in the Incident Response Team, analyzing, remediating, and eradicating the adversary/threat actor from the infrastructure
• You will be taking part of an on-call arrangement, ensuring investigation of escalated prioritized Security Incidents off-hours.
• You will be taking part in analyzing and debugging our event sources, collaborating with the rest of the team and vendors when systems are not working optimally or as part of the continuous evolving of the capabilities and services.
• You will be participating in enablement of your skillset by attending relevant webinars, presentations, conferences, continuous learning, and certifications.

When we are not fighting the bad guys, you can also challenge yourself in other areas. If you are passionate about DevOps, countermeasure, enablement, or other areas, you can work across different fields and technologies in the Security team

What will be your main responsibilities?

• Daily visitation of escalations, triaging, and investigating/analyzing Security Incidents
• Participate in Threat Intelligence and customer advisories
• Participate in Incident Response and on-call arrangement
• Participate in tuning our SOAR/SIEM alerts and capabilities

About you and your skillset

• You have worked a minimum of 2 years in an IT Security function
• You have working experience analyzing security alerts/assessments in a SOC, CSIRT or similar
• You have knowledge in System Administration for Microsoft Windows and Linux
• You have a good understanding in TCP/IP networks and protocols
• You have knowledge about threats and risks regarding Cyber Security, and have a good understanding of SIEM- and Vulnerability Management technologies
• You are keen to learn, taking part in trainings and certifications
• You are fluent in English – both spoken and written
• You have knowledge in the Cloud-space and Microsoft Azure in particular (nice to have)
• You have technical analytical skills and have knowledge in process-oriented IT management (e.g., ITIL, ISO 27001) (nice to have)

We offer

• A fast-growing IT company with a burning desire to make a difference
• A strong no problem culture that is felt at all levels of the company
• A workplace where you get a great opportunity to develop professionally and personally
• Good collaboration and sparring with skilled colleagues
• A highly passionate management team
• Work-as-an-agile service, here you can freely choose which location you want to associate with, and decide for yourself whether you solve your tasks in the office or remotely
• A workplace where there is a strong focus on strengthening social cohesion

Benefits

• 5 weeks of holidays
• 5 sick days/year
• Flexible working hours
• Hybrid working model
• iPhone and Lenovo laptop
• Cafeteria flexible spending account (18.000 CZK/year)
• Meal vouchers in amount of 100 CZK/voucher (55 CZK is covered by employer)
• Monthly pension insurance of 3%
• Possibility to arrange a Multisport card (as a part of Cafeteria)
• Company assistance towards TAX authorities
• Czech, English and Danish lessons paid by company
• Support in your professional and personal growth
• Socializing events (company parties, team events, Friday's breakfast...)
• Fresh fruits and vegetables, delicious coffee and tea and soft drinks
• Height adjustable tables
• Pool table, darts, PlayStation 4 Pro and relax zone